CNNVD-202512-2631 Information

CNNVD ID

CNNVD-202512-2631

Related CVE

CVE-2023-53886

• CNNVD Published: 2025-12-15

Description (Chinese)

Xlight FTP Server是Xlight开源的一个FTP服务器软件。 Xlight FTP Server 3.9.3.6版本存在安全漏洞，该漏洞源于Execute Program配置存在栈缓冲区溢出，可能导致应用程序崩溃。

Description (English)

Xlight FTP Server is an FTP server software from Xlight Open Source. There is a security loophole in version Xlight FTP Server 3.9.3.6, which stems from the spilling of the Execute Program configuration in the buffer zone, which could lead to the collapse of the application.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Xlight

Published

2025-12-15

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/51665 https://www.vulncheck.com/advisories/xlight-ftp-server-stack-buffer-overflow-vulnerability-via-execute-program https://www.xlightftpd.com/ https://access.redhat.com/security/cve/cve-2023-53886